2022 Tsaaro Intellectual Property, All rights reserved
UK’s Data Protection Act, 2018

UK’s Data Protection Act, 2018




What is UK DPA 2018?
- The Data Protection Act, 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR). It lays down data protection principles that must be complied with by organisations, businesses and the government.
- We at Tsaaro, do this task for your organization by offering services pertaining to compliance with the UK’s Data Protection Act, 2018, and ensure all the requirements are fulfilled by your organization/business.
Jurisdiction
- The UK GDPR applies to the processing of personal data carried out by organizations operating within the UK. It also applies to organizations outside the UK that offer goods or services to individuals in the UK.
Requirements
- Lawful processing of personal data based on user consent, contract, legitimate interest, vital interest, public interest and legal requirements
- Transparency through privacy policy and cookie policy.
- Restricting the processing strictly to the purpose.
- Process minimal data for necessary time periods.
- Integrity and confidentiality of the data through access control, encryption, pseudonymisation, anonymization and other state-of-the-art information security practices.
- Demonstration of accountability with proper documentation, contracts, data protection impact assessments (DPIAs), incident response strategies, appointment of DPO and code of conduct.
- Ensuring right to the data subjects including Rights to be informed, access, rectification, object, data portability and erasure.

Fine
Maximum fine of 17.5 million GBP or 4% of annual global turnover – whichever is greater.
Our Approach
- The UK GDPR applies to the processing of personal data carried out by organizations operating within the UK. It also applies to organizations outside the UK that offer goods or services to individuals in the UK.
- Our team of experienced privacy professionals ensure that all the compliance requirements as per the UK’s data protection legislation is fully complied by your organization/business. The process includes- rights of data subjects are not affected during processing activities of the organization/business, drafting privacy, cookie and other policies on behalf of your organization and many other requirements as mandated by the law.

Fine
Maximum fine of 17.5 million GBP or 4% of annual global turnover – whichever is greater.


How our privacy team can help
If your organisation is fully compliant to the UK’s Data Protection Act, 2018-
- It will protect your organisation from hefty penalties for non-compliance.
- Helps in improving customers’ and investors’ trust in your organisation.
- We at Tsaaro, will ensure data protection by design for your organisation.
How our privacy team can help
If your organisation is fully compliant to the UK’s Data Protection Act, 2018-
- It will protect your organisation from hefty penalties for non-compliance.
- Helps in improving customers’ and investors’ trust in your organisation.
- We at Tsaaro, will ensure data protection by design for your organisation.

Why Us?
At Tsaaro, our privacy team comprises of experienced lawyers and InfoSec professionals.
Together we ensure that your organisation is compliant with all regulatory requirements along with best possible technical and infrastructural solutions.
We provide personalised plans to our customers to inculcate data protection by design and by default in their processes in a cost efficient manner.


Why Us?
At Tsaaro, our privacy team comprises of experienced lawyers and InfoSec professionals.
Together we ensure that your organisation is compliant with all regulatory requirements along with best possible technical and infrastructural solutions. We provide personalised plans to our customers to inculcate data protection by design and by default in their processes in a cost efficient manner.